|
Home > Archive > Unix administration > January 2004 > ftp user restrictions
You are viewing an archived Text-only version of the thread.
To view this thread in it's original format and/or if you want to reply to
this thread please [click here]
| Author |
ftp user restrictions
|
|
|
| Hi Unix Guru's,
I would really appreciate if someone could help me.
On my AIX 4.3.3 machine I should have user with strong restriction in
following:
user should be able to do ftp on machine, but once he log in (trough ftp)
he shouldn't be able to change directory at all, but rather stay in his home
directory. In that directory user should deliver or pick files and nothing
else. Normal login in the system should be disabled.
I've tried so far with user permissions and Rsh but couldn't manage.
How can I do this?
Thanks in advance
PJ
| |
| Michael Vilain 2004-01-23, 4:54 pm |
| In article <1069171799.645626@internet.fina.hr>,
"PJ" <pj0309@yahoo.com> wrote:
quote:
> Hi Unix Guru's,
>
> I would really appreciate if someone could help me.
> On my AIX 4.3.3 machine I should have user with strong restriction in
> following:
> user should be able to do ftp on machine, but once he log in (trough ftp)
> he shouldn't be able to change directory at all, but rather stay in his home
> directory. In that directory user should deliver or pick files and nothing
> else. Normal login in the system should be disabled.
> I've tried so far with user permissions and Rsh but couldn't manage.
>
> How can I do this?
The ftpd on your system may not support this. It's called "chroot'ed
directories". There are 3rd-party ftpd's which can on SUN (wuftpd,
pureftpd, ncproftpd) which have this ability (and more). If you replace
your existing ftpd with one of these, that will solve your problem. If
you can't change the ftpd, then you'll have to live with the type of
access you're seeing and just deal.
To restrict access to a shell, create their account with an invalid
shell or /bin/false.
--
DeeDee, don't press that button! DeeDee! NO! Dee...
| |
| UnixFan 2004-01-23, 4:54 pm |
| "PJ" <pj0309@yahoo.com> wrote in message news:<1069171799.645626@internet.fina.hr>...quote:
> Hi Unix Guru's,
>
> I would really appreciate if someone could help me.
> On my AIX 4.3.3 machine I should have user with strong restriction in
> following:
> user should be able to do ftp on machine, but once he log in (trough ftp)
> he shouldn't be able to change directory at all, but rather stay in his home
> directory. In that directory user should deliver or pick files and nothing
> else. Normal login in the system should be disabled.
> I've tried so far with user permissions and Rsh but couldn't manage.
>
> How can I do this?
>
> Thanks in advance
>
> PJ
Try to compile and install proftpd, then configure it to have chroot
for the user for doing ftp. To not let the user have command line
access, change the user's shell in /etc/security/user to /bin/ftponly
(make a symbolic link from /bin/false to /bin/ftponly).
|
|
|
|
|